$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/COLIN/p8nUGbmVmqvpgT_gJhwavqAG1HI.roa File: p8nUGbmVmqvpgT_gJhwavqAG1HI.roa (raw, json) Hash identifier: M1IO8DAshFtaVJXHbv+u3b59L3PKVHVQdG8dJSG6dds= Subject key identifier: A7:C9:D4:19:B9:95:9A:AB:E9:81:3F:E0:26:1C:1A:BE:A0:06:D4:72 Certificate issuer: /CN=9700C068EFA9A6B2E6879310C9AEA030DC8B2AD1 Certificate serial: 0105 Authority key identifier: 97:00:C0:68:EF:A9:A6:B2:E6:87:93:10:C9:AE:A0:30:DC:8B:2A:D1 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/lwDAaO-pprLmh5MQya6gMNyLKtE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/COLIN/p8nUGbmVmqvpgT_gJhwavqAG1HI.roa Signing time: Mon 26 Aug 2024 05:11:39 +0000 ROA not before: Mon 26 Aug 2024 05:11:39 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 150768 IP address blocks: 2401:2a60::/32 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/COLIN/lwDAaO-pprLmh5MQya6gMNyLKtE.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/COLIN/lwDAaO-pprLmh5MQya6gMNyLKtE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/lwDAaO-pprLmh5MQya6gMNyLKtE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 261 (0x105) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9700C068EFA9A6B2E6879310C9AEA030DC8B2AD1 Validity Not Before: Aug 26 05:11:39 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=A7C9D419B9959AABE9813FE0261C1ABEA006D472 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:db:28:18:c1:3f:f1:36:2f:f2:1d:c9:33:c9: 53:13:08:ce:62:09:41:5a:26:34:7d:ed:3c:5d:78: a6:de:12:99:73:64:f5:47:16:40:5e:94:f6:0c:e6: 78:b7:8f:1d:2c:1b:bb:c4:c7:aa:34:1e:c1:d5:4a: 46:8f:75:72:ca:cf:32:ef:d9:e7:80:e8:e2:2d:ea: 49:2d:23:78:07:db:84:0c:25:59:69:a6:7e:dd:13: 57:b0:25:ad:d5:d1:41:0f:93:f1:ec:77:d8:0c:48: e0:6c:47:f1:d0:68:ca:3c:fd:0c:81:d8:c5:d7:a8: ff:83:9a:34:89:31:d5:34:9a:d6:c9:70:78:3b:3a: 1f:c6:4c:0e:01:d2:f8:5b:16:cb:d5:24:0e:6f:f5: 85:06:6f:db:f2:6c:4e:3d:5d:3d:c8:ab:8d:0a:52: 00:da:b1:a1:cc:aa:ed:41:84:f3:34:56:bc:57:fd: 71:1b:ed:eb:6b:14:37:c2:de:81:8f:cb:16:69:6d: 6a:37:30:02:bd:bd:48:79:1f:7c:2d:45:17:45:6e: fb:0b:d3:ac:5a:30:3a:a8:c7:61:cc:1d:0e:38:f4: c2:3c:d8:83:6f:88:55:c7:63:18:f4:4a:e2:7b:b8: d8:99:97:43:52:59:a5:42:7d:cf:37:5f:6a:d4:f8: 15:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:C9:D4:19:B9:95:9A:AB:E9:81:3F:E0:26:1C:1A:BE:A0:06:D4:72 X509v3 Authority Key Identifier: keyid:97:00:C0:68:EF:A9:A6:B2:E6:87:93:10:C9:AE:A0:30:DC:8B:2A:D1 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/COLIN/lwDAaO-pprLmh5MQya6gMNyLKtE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/lwDAaO-pprLmh5MQya6gMNyLKtE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/COLIN/p8nUGbmVmqvpgT_gJhwavqAG1HI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:2a60::/32 Signature Algorithm: sha256WithRSAEncryption 02:cc:18:74:61:58:93:a8:74:73:f6:01:cc:c9:87:21:ed:80: ef:ba:af:74:28:54:25:15:59:1a:27:ae:c9:2c:d3:b9:98:1a: da:e0:90:ba:ab:69:5c:2b:69:21:c3:e0:89:99:d8:a4:37:e8: 7f:c1:14:d6:78:8d:eb:4a:b5:7e:14:43:7b:a2:11:96:85:fd: 93:0e:0b:85:cf:70:95:98:0d:fc:36:58:90:dc:fb:b8:2d:8b: a7:7d:62:14:13:27:ce:da:0c:eb:ab:8f:73:93:95:02:39:a2: 49:04:9d:b1:08:fd:3a:a2:6e:8c:14:c0:a8:13:c2:ed:ae:b1: 8f:12:02:5f:c6:57:24:82:4f:2d:1c:c7:54:f0:05:d8:58:53: 94:c7:fd:d2:47:c2:d3:de:5c:5f:39:78:0e:39:65:1d:3a:76: 95:04:18:95:0b:c8:52:71:fe:18:88:14:66:44:cf:0e:78:27: 1c:b4:57:b6:23:08:cc:74:3f:f5:de:af:4d:63:9a:50:cc:4f: f9:2f:92:f2:51:da:47:ef:45:18:7d:12:42:51:56:2a:bd:5e: 40:07:ba:82:c6:82:e4:7a:24:13:1d:7f:91:88:64:14:e7:f0: b9:76:f5:ea:67:2e:f2:ea:c5:5f:73:5a:aa:4d:bc:2c:35:4d: 20:52:bc:0f -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICAQUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTcw MEMwNjhFRkE5QTZCMkU2ODc5MzEwQzlBRUEwMzBEQzhCMkFEMTAeFw0yNDA4MjYw NTExMzlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEE3QzlENDE5Qjk5NTlB QUJFOTgxM0ZFMDI2MUMxQUJFQTAwNkQ0NzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDe2ygYwT/xNi/yHckzyVMTCM5iCUFaJjR97TxdeKbeEplzZPVH FkBelPYM5ni3jx0sG7vEx6o0HsHVSkaPdXLKzzLv2eeA6OIt6kktI3gH24QMJVlp pn7dE1ewJa3V0UEPk/Hsd9gMSOBsR/HQaMo8/QyB2MXXqP+DmjSJMdU0mtbJcHg7 Oh/GTA4B0vhbFsvVJA5v9YUGb9vybE49XT3Iq40KUgDasaHMqu1BhPM0VrxX/XEb 7etrFDfC3oGPyxZpbWo3MAK9vUh5H3wtRRdFbvsL06xaMDqox2HMHQ449MI82INv iFXHYxj0SuJ7uNiZl0NSWaVCfc83X2rU+BVTAgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQUp8nUGbmVmqvpgT/gJhwavqAG1HIwHwYDVR0jBBgwFoAUlwDAaO+pprLmh5MQ ya6gMNyLKtEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ09MSU4v bHdEQWFPLXBwckxtaDVNUXlhNmdNTnlMS3RFLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9sd0RBYU8tcHByTG1oNU1ReWE2Z01OeUxLdEUuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DT0xJTi9wOG5VR2JtVm1xdnBnVF9nSmh3 YXZxQUcxSEkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAJAEq YDANBgkqhkiG9w0BAQsFAAOCAQEAAswYdGFYk6h0c/YBzMmHIe2A77qvdChUJRVZ GieuySzTuZga2uCQuqtpXCtpIcPgiZnYpDfof8EU1niN60q1fhRDe6IRloX9kw4L hc9wlZgN/DZYkNz7uC2Lp31iFBMnztoM66uPc5OVAjmiSQSdsQj9OqJujBTAqBPC 7a6xjxICX8ZXJIJPLRzHVPAF2FhTlMf90kfC095cXzl4DjllHTp2lQQYlQvIUnH+ GIgUZkTPDngnHLRXtiMIzHQ/9d6vTWOaUMxP+S+S8lHaR+9FGH0SQlFWKr1eQAe6 gsaC5HokEx1/kYhkFOfwuXb16mcu8urFX3Naqk28LDVNIFK8Dw== -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:36 2024 by rpki-client on console-fra.rpki-client.org